[NETFILTER]: Add CONFIG_NETFILTER_ADVANCED option

The NETFILTER_ADVANCED option hides lots of the rather obscure netfilter options when disabled and provides defaults (M) that should allow to run a distribution firewall without further thinking. Defaults to 'y' to avoid breaking current configurations. Signed-off-by: Patrick McHardy <kaber@trash.net> Signed-off-by: David S. Miller <davem@davemloft.net>
author: Patrick McHardy <kaber@trash.net> 2007-12-18 01:47:05 -0500
committer: David S. Miller <davem@davemloft.net> 2008-01-28 17:59:12 -0500
commit: 33b8e776056202aceaf4c90f465d0f4ee53432ac (patch)
tree: 24f6bc7b89a81d95b1b9c0f16254ad8423aed9cb /net/Kconfig
parent: 34498825cb9062192b77fa02dae672a4fe6eec70 (diff)
1 files changed, 12 insertions, 0 deletions
diff --git a/net/Kconfig b/net/Kconfig
index 58ed2f4199dc..b6a5d454f2ff 100644
--- a/net/Kconfig
+++ b/net/Kconfig
@@ -144,9 +144,21 @@ config NETFILTER_DEBUG
          You can say Y here if you want to get additional messages useful in
          debugging the netfilter code.
+config NETFILTER_ADVANCED
+        bool "Advanced netfilter configuration"
+        depends on NETFILTER
+        default y
+        help
+          If you say Y here you can select between all the netfilter modules.
+          If you say N the more ununsual ones will not be shown and the
+          basic ones needed by most people will default to 'M'.
+          If unsure, say Y.
 config BRIDGE_NETFILTER
        bool "Bridged IP/ARP packets filtering"
        depends on BRIDGE && NETFILTER && INET
+        depends on NETFILTER_ADVANCED
        default y
        ---help---
          Enabling this option will let arptables resp. iptables see bridged
author	Patrick McHardy <kaber@trash.net>	2007-12-18 01:47:05 -0500
committer	David S. Miller <davem@davemloft.net>	2008-01-28 17:59:12 -0500
commit	33b8e776056202aceaf4c90f465d0f4ee53432ac (patch)
tree	24f6bc7b89a81d95b1b9c0f16254ad8423aed9cb /net/Kconfig
parent	34498825cb9062192b77fa02dae672a4fe6eec70 (diff)

diff --git a/net/Kconfig b/net/Kconfig index 58ed2f4199dc..b6a5d454f2ff 100644 --- a/net/Kconfig +++ b/net/Kconfig
@@ -144,9 +144,21 @@ config NETFILTER_DEBUG
144	You can say Y here if you want to get additional messages useful in	144	You can say Y here if you want to get additional messages useful in
145	debugging the netfilter code.	145	debugging the netfilter code.
146		146
		147	config NETFILTER_ADVANCED
		148	bool "Advanced netfilter configuration"
		149	depends on NETFILTER
		150	default y
		151	help
		152	If you say Y here you can select between all the netfilter modules.
		153	If you say N the more ununsual ones will not be shown and the
		154	basic ones needed by most people will default to 'M'.
		155
		156	If unsure, say Y.
		157
147	config BRIDGE_NETFILTER	158	config BRIDGE_NETFILTER
148	bool "Bridged IP/ARP packets filtering"	159	bool "Bridged IP/ARP packets filtering"
149	depends on BRIDGE && NETFILTER && INET	160	depends on BRIDGE && NETFILTER && INET
		161	depends on NETFILTER_ADVANCED
150	default y	162	default y
151	---help---	163	---help---
152	Enabling this option will let arptables resp. iptables see bridged	164	Enabling this option will let arptables resp. iptables see bridged